package cn.oms.billing.provider.security;

import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;

@Configuration
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SecurityConfig extends WebSecurityConfigurerAdapter {
    // 设置放行
    // 现阶段我们的Spring-Security全部放行
    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.csrf().disable() //防跨域攻击
            .authorizeRequests()
                .anyRequest().permitAll();//任何请求,全部放行
    }
}
